Infusionsoft Gravity Forms 1.5.3 - 1.5.10 Arbitrary File Upload

Affects Plugin

fixed in version 1.5.10

References

CVE 2014-6446
EXPLOITDB 34925
METASPLOIT exploit/unix/webapp/wp_infusionsoft_upload
PACKETSTORM 131002
URL https://research.g0blin.co.uk/cve-2014-6446/

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 4704
Verified No
WPVDB ID 7634

Timeline

Publicly Published 2014-10-06 (over 5 years ago)
Added 2014-10-06 (over 5 years ago)
Last Updated 2019-10-21 (3 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin